1cce1a38e7ded5ab7d23928b730f514ac05c6c97107e89e293ac7590cc84b455

Sharing

Copy URL Twitter E-mail

General

Target

1cce1a38e7ded5ab7d23928b730f514ac05c6c97107e89e293ac7590cc84b455
Size

172KB
MD5

194fc911595fb4024d0e008946ec6b18
SHA1

fe986ea201862dff2bef345418835052910a502a
SHA256

1cce1a38e7ded5ab7d23928b730f514ac05c6c97107e89e293ac7590cc84b455
SHA512

5d4e60f0c69717c4404dc16c3158b53fef5d87a691e8a1c99fa53f562b0499cc7b41de12029de38323765765e4c8ed08141a7282aa391bfed06724d9b1593754
SSDEEP

3072:iE3A3Qdv97awHITqbB6eCEnis0pR/fL3XAia0pMNzw//EzZDTwb2rq:iEQ32zdB6eDu/f7Ag5EzdbG

Score

N/A

Malware Config

Signatures

Files

1cce1a38e7ded5ab7d23928b730f514ac05c6c97107e89e293ac7590cc84b455
.exe windows x86

603734f9282b8f746754e6efb2621187

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

rtutils

LogEventW

psapi

GetModuleFileNameExW

kernel32

GlobalHandle
lstrcmpA
TransactNamedPipe
IsValidLanguageGroup
RtlUnwind
GetFileAttributesExW
SystemTimeToFileTime
CreateEventA
GetPriorityClass
CreateFileA
DeleteCriticalSection
GetFullPathNameW
HeapUnlock
FindClose
lstrlenA
LocalFree
lstrlenW
SetFileApisToOEM
GetCPInfo
SetFileTime
SetMailslotInfo
GetSystemInfo
VerSetConditionMask
OpenSemaphoreW
FindResourceExA
CreateMailslotW
GetSystemWindowsDirectoryW
GetComputerNameA
TlsSetValue
lstrcmpW
ReadFile
GetCurrentThread
LoadResource
GetTempPathW
GetTimeFormatW

Exports

Exports

KillDataExW

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.On59
Size: 1024B - Virtual size: 914B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Zek
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Eh0887
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Nus
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Re82
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Sty
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Racy
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Cru
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Lax503
Size: 512B - Virtual size: 362B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Tup
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

603734f9282b8f746754e6efb2621187

Headers

DLL Characteristics

File Characteristics

Imports

rtutils

psapi

kernel32

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 135KB

.On59 Size: 1024B - Virtual size: 914B

.Zek Size: 512B - Virtual size: 4KB

.Eh0887 Size: 512B - Virtual size: 28B

.Nus Size: 512B - Virtual size: 132B

.Re82 Size: 1024B - Virtual size: 896B

.Sty Size: 512B - Virtual size: 128B

.Racy Size: 512B - Virtual size: 128B

.Cru Size: 512B - Virtual size: 128B

.Lax503 Size: 512B - Virtual size: 362B

.Tup Size: 21KB - Virtual size: 21KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 136KB - Virtual size: 135KB

.On59
Size: 1024B - Virtual size: 914B

.Zek
Size: 512B - Virtual size: 4KB

.Eh0887
Size: 512B - Virtual size: 28B

.Nus
Size: 512B - Virtual size: 132B

.Re82
Size: 1024B - Virtual size: 896B

.Sty
Size: 512B - Virtual size: 128B

.Racy
Size: 512B - Virtual size: 128B

.Cru
Size: 512B - Virtual size: 128B

.Lax503
Size: 512B - Virtual size: 362B

.Tup
Size: 21KB - Virtual size: 21KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 5KB - Virtual size: 5KB